FlashSploit : Exploitation Framework For ATtiny85 Based HID Attacks

Flashsploit is an Exploitation Framework for Attacks using ATtiny85 HID Devices such as Digispark USB Development Board, flashsploit generates Arduino IDE Compatible (.ino) Scripts based on User Input and then Starts a Listener in Metasploit-Framework if Required by the Script, in Summary : Automatic Script Generation with Automated msfconsole.

Windows

Data Exfiltration

  • Extract all WiFi Passwords and Uploads an XML to SFTP Server | YouTube :
  • Extract Network Configuration Information of Target System and Uploads to SFTP Server | YouTube :
  • Extract Passwords and Other Critical Information using Mimikatz and Uploads to SFTP Server | YouTube :

Also Read – Intrigue Core : Discover Your Attack Surface

Reverse Shells

  • Get Reverse Shell by Abusing Microsoft HTML Apps (mshta) | YouTube :
  • Get Reverse Shell by Abusing Certification Authority Utility (certutil)
  • Get Reverse Shell by Abusing Windows Script Host (csript)
  • Get Reverse Shell by Abusing Windows Installer (msiexec)
  • Get Reverse Shell by Abusing Microsoft Register Server Utility (regsvr32)

Miscellaneous

  • Change Wallpaper of Target Machine | YouTube :
  • Make Windows Unresponsive using a .bat Script (100% CPU and RAM usage)
  • Drop and Execute a File of your Choice, a ransomware maybe? 😉
  • Disable Windows Defender Service on Target Machine

Tested on

  • Kali Linux 2019.2
  • BlackArch Linux

Dependencies

Flashsploit Depends upon 4 Packages which are Generally Pre-installed in Major Pentest OS :

  • Metasploit-Framework
  • Python 3
  • SFTP
  • PHP

If you think I should still make an Install Script, Open an issue.

Usage

git clone https://github.com/thewhiteh4t/flashsploit.git
cd flashsploit
python3 flashsploit.py

R K

Recent Posts

How to Install Docker on Ubuntu (Step-by-Step Guide)

Docker is a powerful open-source containerization platform that allows developers to build, test, and deploy…

17 hours ago

Uninstall Docker on Ubuntu

Docker is one of the most widely used containerization platforms. But there may come a…

17 hours ago

Admin Panel Dorks : A Complete List of Google Dorks

Introduction Google Dorking is a technique where advanced search operators are used to uncover information…

2 days ago

Log Analysis Fundamentals

Introduction In cybersecurity and IT operations, logging fundamentals form the backbone of monitoring, forensics, and…

3 days ago

Networking Devices 101: Understanding Routers, Switches, Hubs, and More

What is Networking? Networking brings together devices like computers, servers, routers, and switches so they…

3 days ago

Sock Puppets in OSINT: How to Build and Use Research Accounts

Introduction In the world of Open Source Intelligence (OSINT), anonymity and operational security (OPSEC) are…

3 days ago